Acme.sh no longer compatible with Lets Encrypt

Well I did paste the version info. Who knows....

sh-4.2# ./acme.sh -v

v2.8.0

sh-4.2# curl -v https://acme-v01.api.letsencrypt.org/directory

  • About to connect() to acme-v01.api.letsencrypt.org port 443 (#0)
  • Trying 172.65.32.248...
  • Connected to acme-v01.api.letsencrypt.org (172.65.32.248) port 443 (#0)
  • Initializing NSS with certpath: sql:/etc/pki/nssdb
  • CAfile: /etc/pki/tls/certs/ca-bundle.crt
    CApath: none
  • SSL connection using TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
  • Server certificate:
  •   subject: CN=acme-v01.api.letsencrypt.org
    
  •   start date: Aug 18 15:37:44 2021 GMT
    
  •   expire date: Nov 16 15:37:42 2021 GMT
    
  •   common name: acme-v01.api.letsencrypt.org
    
  •   issuer: CN=R3,O=Let's Encrypt,C=US
    

GET /directory HTTP/1.1
User-Agent: curl/7.29.0
Host: acme-v01.api.letsencrypt.org
Accept: /

< HTTP/1.1 403 Forbidden
< Server: nginx
< Date: Tue, 31 Aug 2021 00:25:56 GMT
< Content-Type: application/problem+json
< Content-Length: 333
< Connection: keep-alive
< ETag: "611d36ee-14d"
<
{
"type": "urn:acme:error:serverInternal",
"detail": "ACMEv1 is deprecated and you can no longer get certificates from this endpoint. Please use the ACMEv2 endpoint, you may need to update your ACME client software to do so. Visit End of Life Plan for ACMEv1 - #27 by jillian for more information."
}

1 Like